- BlackBerry Storm vs. the iPhone
- Digg's Kevin Rose: "We have to do better"
- Blogger warns: "Nortel doesn't make it out alive"
- Financial quagmire bringing out the scammers
- Verizon plays with the wrong e-mail addresses
Newsletters | Podcasts | Chats | Opinions | RSS Feeds | This Week In Print | IT Careers | Community | Reports | Downloads | Slideshows | New Data Center
Partner Sites:Application Performance Solutions | App Performance | Networking Solution | SafeGuard Enterprise Solution Center | SOA | Test your Web Filter | Value of WDS
Senior Editor Tim Greene clarifies issues surrounding the evolving NAC security architecture.
Don't look to NAC to reduce costs, according to the Forrester Research report mentioned in the last newsletter.
In the short term, businesses should actually expect costs to rise due to NAC deployment, according to the study by Rob Whiteley, a Forrester analyst.
“In fact, as a network manager, you run the risk of increasing costs by bogging down your network administrators and engineers with additional troubleshooting and configuration requirements,” the study says.
This parallels admissions made by NAC vendors themselves last month at Interop when a panel was asked about the ROI for NAC. According to those speakers, setting up NAC is a slow, methodical process and may in its initial phases require significant work.
That is especially true of networks that lack updated infrastructure to support the form of NAC chosen, they say. The problem is compounded when networks have not been upgraded for awhile and businesses try to deploy NAC that involves network-based enforcement. (Compare NAC products)
When NAC is regarded as necessary, businesses can look to risk management and support for regulatory compliance as justifications, the study says.
NAC costs can be contained, though, via sensible phasing in of the technology. For instance, appliances and software NAC products can be used initially, delaying network-based NAC until the regularly scheduled network refresh, the study says.
Businesses should use vendors whose NAC gear can utilize existing network tools rather than duplicating them. For instance, existing policy severs might be used to store NAC policies rather than duplicating policies on a separate NAC platform, Forrester says.
There’s more in this study, which Forrester sells at online.
Tim Greene is senior editor at Network World.
Partner Content
Brilliantly simple security and control solutions for email, web and endpoint
www.sophos.com
Stopping data leakage
Learn how to exploit your current security investment to control the information that flows into, through and out of your network.
Download the white paper.
Why detection rates aren't enough
Evaluating endpoint security products is a time-consuming and daunting task. Learn the six critical questions you need to ask prospective vendors to get the right endpoint solution.
Download the white paper.
Applications: taking back control
Employees installing unauthorized applications is a growing threat to business security and productivity. Cost-effectively reduce this threat by integrating control into your malware protection.
Learn more today.
Comments (1)
Hi Tim... Stacey Lum from InfoExpress here...By Anonymous on May 15, 2008, 4:54 pmHi Tim... Stacey Lum from InfoExpress here. Interesting report from Forrester. I agree with the statement that most NAC deployments take a long time to complete....
Reply | Read entire comment
View all comments